Scanned pages/files
Request | Server response | Status |
http://www.iranherald.com/ | 200 OK Content-Length: 57643 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Malaysia Airlines website hacked by Cyber Caliphate ...[43149 bytes skipped]... ex.php/sid/229740365">Airlines Suspend Baghdad Flights After Jet Shooting</a></li> <li><a href="http://www.iranherald.com/index.php/sid/229728583">UAE airlines suspend flights to Baghdad after shooting</a></li> <li><a href="http://www.iranherald.com/index.php/sid/229694861">Malaysia Airlines website hacked by Cyber Caliphate</a></li> <li><a href="http://www.iranherald.com/index.php/sid/229694753">Malaysian airlines website hacked with 404-Plane Not Found message on front page</a></li> </ul> <p><a href="http://www.iranherald.com/index.php/cat/26e7946dced8f2bc">More Travel and Tourism News</a></p> </div> <div c ...[25479 bytes skipped]... | ||
http://www.iranherald.com/library/js/jquery.min.js | 200 OK Content-Length: 91555 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/jquery-ui.min.js | 200 OK Content-Length: 200719 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/scripts.js | 200 OK Content-Length: 1744 Content-Type: application/javascript | clean |
http://c5.zedo.com/jsc/c5/fo.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 28 Jan 2015 00:13:33 GMT Location: http://z1.zedo.com/jsc/c5/fo.js Server: AkamaiGHost Content-Length: 0 | clean |
http://z1.zedo.com/jsc/c5/fo.js | 200 OK Content-Length: 9550 Content-Type: application/x-javascript | clean |
http://widgets.twimg.com/j/2/widget.js | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/jquery.expander.js | 200 OK Content-Length: 13477 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/cufon-yui.js | 200 OK Content-Length: 18264 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/Big_Caslon_500.font.js | 200 OK Content-Length: 22057 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/modernizr-2.0.min.js | 200 OK Content-Length: 13956 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/jquery-easing.1.2.pack.js | 200 OK Content-Length: 3429 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/jquery-easing-compatibility.1.2.pack.js | 200 OK Content-Length: 1567 Content-Type: application/javascript | clean |
http://www.iranherald.com/library/js/coda-slider.1.1.pack.js | 200 OK Content-Length: 2485 Content-Type: application/javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 150791 Content-Type: application/x-javascript | clean |
http://www.iranherald.com/index.php/cat/1b76a2b4cf7810bd | 200 OK Content-Length: 57512 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iranherald.com
Result:
GET / HTTP/1.1
Host: iranherald.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: iranherald.com
Referer: http://www.google.com/search?q=iranherald.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iranherald.com
Referer: http://www.google.com/search?q=iranherald.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iranherald.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://iranherald.com/
Result: iranherald.com is not infected or malware details are not published yet.
Result: iranherald.com is not infected or malware details are not published yet.